Privacy Policy

Information pursuant to Art. 13 of European Regulation 679/2016

Pursuant to Art. 13 of European Regulation (EU) 2016/679 (hereinafter referred to as the GDPR), and in relation to the personal data made available to Tenuta Don Mimì.it by submitting it to the “Contacts” form on the website available at tenutadonmimi.it/contatti, and to the personal data sent to the email addresses listed on the same website, the following is communicated.

Data Controller and Data Protection Officer
The Data Controller is Tenuta Don Mimì (hereinafter referred to as the “Data Controller”), with registered office at Contrada Cervillo, 21 – 72017 Ostuni (Br).
The Data Controller, with reference to any requests regarding the management and processing of personal data, may be contacted at the following email address: info@tenutadonmimi.it.
Tenuta Don Mimì.it has not appointed a Data Protection Officer (DPO), as it does not fall within the categories of persons required to appoint one, nor does it meet any of the requirements set forth in Article 37 of the GDPR.

Purpose of data processing
The processing of data acquired through the aforementioned methods is intended to provide information regarding the services and activities offered by the company, such as, but not limited to, the services offered, and to allow the company to respond to requests for information received.
Personal data may be processed using paper or electronic archives and managed in a manner strictly necessary to fulfill the purposes indicated above.

Legal Basis for Processing
Tenuta Don Mimì.it processes personal data lawfully, where processing is based on express consent to receive information regarding Tenuta Don Mimì.it’s services and activities, or to respond to requests for information received, in order to fulfill the contractual obligation of cooperation and information in accordance with the provisions of the law.

Consequences of Failure to Provide Personal Data
With regard to the personal data requested, failure to provide such data prevents Tenuta Don Mimì.it from sending information—using the methods indicated—regarding the services and activities it provides.

Data Retention
The personal data being processed will be retained for a period of time no longer than necessary to fulfill the purposes for which they were collected and/or subsequently processed, or to fulfill any retention obligations required by law.

Disclosure of Data
Personal data may be disclosed to:
1. Judicial or administrative authorities, for the fulfillment of legal obligations.
2. Parties who process data in compliance with specific legal obligations;
3. Categories of persons involved in the organization of the website (administrative, commercial, marketing, legal, system administrators) or external parties (such as third-party technical service providers, hosting providers, IT companies, communications agencies).

Dissemination of data with automated decision-making processes and profiling
Personal data is not subject to dissemination or any fully automated decision-making process, nor to profiling, or any form of automated processing of personal information for the purpose of evaluating aspects of the personal sphere of an individual and/or a group of individuals, including for advertising and/or marketing purposes.

Data Subject Rights
The rights recognized by the GDPR include:
– request from the Data Controller access to personal data and related information; rectification of inaccurate data or completion of incomplete data; erasure of personal data (so-called “right to be forgotten” if one of the conditions set out in Article 17, paragraph 1 of the GDPR applies, subject to the exceptions set out in paragraph 3 of the same Article); restriction of processing of previously provided personal data (if one of the conditions set out in Article 18, paragraph 1 of the GDPR applies);
– request and obtain from the Data Controller—where the legal basis for processing is consent and the processing is carried out by automated means—a copy of the personal data provided and of the data generated in the performance of the relationship (and not of anonymous data or data not relating exclusively to the requesting person) in a commonly used and machine-readable format, including for the purpose of communicating such data to another data controller (so-called “right to be forgotten”). Right to data portability. Exercising the right to data portability does not automatically imply the deletion of the data, which must be specifically requested. The Data Controller will not be able to provide a copy of the data if it has been deleted at the request of the requester or if the retention period, as specified above, has expired.
In order to ensure security and prevent unlawful activities, the provision of a copy of personal data is subject to the Data Controller’s successful completion of identity verification procedures. In any case, Tenuta Don Mimì.it is not responsible in any way for the processing carried out by the individual data subject or by any other party receiving the data subject to portability;
– object at any time to the processing of personal data in specific circumstances;
– withdraw consent at any time, limited to cases in which the processing is based on consent for one or more specific purposes and concerns common personal data (e.g., residential address, date of birth, etc.) or particular categories of data (e.g., data concerning health, racial origin, political opinions, religious beliefs, sex life, etc.). Processing based on consent and carried out prior to its withdrawal is still lawful.
To exercise the aforementioned rights, please use the appropriate form available at the following link tenutadonmimi.it/contatti or send a request by email to info@tenutadonmimi.it
– lodge a complaint with a supervisory authority (Italian Data Protection Authority – www.garanteprivacy.it).

Cookies
Our site may store or retrieve information from your browser in the form of cookies.
Cookies are necessary for the proper functioning of the website and to improve the user’s browsing experience as they store certain information (e.g., preferences, Internet access device, etc.) for subsequent visits to the website.

Cookies used
Technical cookies
They enable functions without which the full functionality of the website would not be possible.
_icl_current_language
cc_cookie
PHPSESSID

Analytical cookies
They are used to understand how visitors interact with the website.
_ga
_ga_*

Cookie management
Pursuant to Article 24 of the GDPR, users can freely choose whether or not to accept cookies, and may change their settings at any time.
If you accept cookies by clicking the appropriate button in the short notice, the cookies contained in the pages you visit will be temporarily stored in an area of your computer and will be readable only by the person who issued them. From the short notice, you can customize your cookie settings, choosing which ones to accept and which to reject.
If you reject cookies, or remove existing cookies, you will not be able to benefit from their associated features.

To better understand how to configure your browser to accept or reject cookies, here are links to the cookie guides for various browsers:
Internet Explorer™: http://windows.microsoft.com/it-it/windows7/block-enable-or-allow-cookies
Safari™: http://www.apple.com/it/privacy/use-of-cookies/
Chrome™: https://support.google.com/chrome/answer/95647?hl=it&hlrm=en
Firefox™: http://support.mozilla.org/it/kb/Attivare%20e%20disattivare%20i%20cookie
Opera™: http://help.opera.com/Windows/10.20/it/cookies.html

Resources
For more information on privacy and cookies, visit the website of the Italian Data Protection Authority Personal: https://www.garanteprivacy.it/home

Changes to the Privacy Policy
The data controller reserves the right to make changes to this privacy policy at any time by giving notice to users on this page. Therefore, please check this page often, referring to the date of the last modification indicated at the bottom. If you do not accept any changes to this privacy policy, you must cease using this site and may request that the data controller remove your personal data. Unless otherwise specified, the previous privacy policy will continue to apply to personal data collected up to that point.